1. Who we are

Brocus IT Solutions Pvt. Ltd is a Business Process Outsourcing (BPO) company headquartered in Navi Mumbai, Maharashtra, India. We provide customer support, inbound/outbound sales, and operational outsourcing services to businesses primarily in the United States.
Company: Brocus IT Solutions Pvt. Ltd
Country: India
Email: hr@brocussolutions.com
Phone: +91-843 3771 532

2. What information we collect

We collect only what is necessary:

• Contact information: Name, email address, phone number, company name
• Business information: Industry, services you're interested in, country of operation
• Communication records: Messages, emails, or inquiries you send us
• Website usage data: IP address, browser type, pages visited, and time spent (via cookies)
• Transactional data: If you engage our services, billing and contract-related information

We do not collect sensitive personal data (health, financial account numbers, government IDs) through our website forms.

3. How we use your information

• To respond to your inquiry or consultation request
• To provide, manage, and improve our BPO services
• To send relevant business communications (you can opt out anytime)
• To meet legal, regulatory, and compliance obligations
• To protect the security of our systems and prevent fraud

We will never sell your personal data to third parties. We do not use your data for automated profiling or decision-making without human oversight.

4. Legal basis for processing

Under GDPR, we process your data based on: (a) your consent, (b) performance of a contract, (c) our legitimate business interests, or (d) legal obligation — whichever applies to the specific interaction.

Under India's DPDP Act 2023, we process data based on your consent or for legitimate uses as defined by the Act. Under CCPA/CPRA, California residents have specific rights as described in Section 7.

5. How we share your information

We share your data only in limited circumstances:

• Service providers: Trusted tools we use (e.g., CRM, email platforms) under strict data processing agreements
• Legal requirements: When required by law, court order, or government authority in India or the US
• Business transfers: In the event of a merger or acquisition, your data may transfer — we will notify you

Any third party we work with is contractually required to protect your data to the same standards we uphold.

6. Marketing Communications & Do-Not-Call

If you provide your contact details, we may reach out regarding your inquiry and relevant services. You can opt out of marketing communications at any time by:

• Clicking "unsubscribe" in any email we send
• Emailing us at hr@brocussolutions.com
• Calling us at +91-843 3771 532

We maintain a written Do-Not-Call (DNC) Policy in accordance with applicable Indian telecom regulations and US calling guidelines. A copy is available upon request. We comply with India's TRAI regulations and the US CAN-SPAM Act for all commercial communications.

7. Data security

Brocus is certified under ISO 27001 (Information Security Management). We implement industry-standard safeguards including data encryption in transit and at rest, role-based access controls, audit trails, and regular employee security training. To prevent unauthorised access and maintain data accuracy, we employ technical, administrative, and physical safeguards across all our systems and processes. Your contact and business data is managed through Salesforce, an enterprise-grade CRM platform with built-in encryption and security controls. While no system is completely immune to breaches, we take every reasonable step to protect your information.

8. Your rights

Depending on where you are located, you have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Ask us to fix inaccurate or incomplete information
• Deletion ("Right to be forgotten"): Request we delete your data (subject to legal retention requirements)
• Withdraw consent: Opt out of marketing communications at any time
• Data portability: Receive your data in a commonly used format (GDPR)
• Opt out of sale/sharing (CCPA): California residents can request we do not sell or share their data — we do not sell data, but this right applies nonetheless
• Grievance redressal (India DPDP): Lodge a complaint with our Data Protection Officer

To exercise any right, email us at hr@brocussolutions.com. We will respond within 30 days (or as legally required).

9. Cookies

Our website uses cookies to understand how visitors use the site and improve your experience. You can control cookies through your browser settings. Disabling cookies may affect some website functionality. We do not use third-party advertising cookies.

10. International data transfers

Since we are based in India and serve US clients, personal data may be transferred between these countries. We ensure such transfers comply with applicable laws and include appropriate safeguards (such as standard contractual clauses under GDPR, and compliance with India's DPDP Act cross-border transfer rules).

11. Data retention

We retain your personal data only for as long as necessary to fulfill the purpose it was collected for, or as required by applicable Indian and US laws. Inquiry data is typically retained for up to 3 years; client contractual data is retained as required by law.

12. California Residents — Additional Rights (CCPA/CPRA)

California residents may request disclosure of the personal information we have collected, used, disclosed, or sold about them in the previous 12 months, including the categories of data, sources, purposes, and any third parties it was shared with.

California residents have the right to: request disclosure of data collected, request deletion, opt out of any sale of personal information (we do not sell data), and be free from discrimination for exercising these rights. To submit a California privacy request, email hr@brocussolutions.com.

13. Updates to this policy

We may update this policy from time to time. When we do, we will revise the "Last Updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website after changes constitutes your acceptance of the updated policy.